CVE-2012-6131

🗓️ 11 Apr 2014 15:16:55Reported by redhatType

cve🔗 web.nvd.nist.gov👁 40 Views🌐 WEB

CVE-2012-6131 XSS vulnerability in cgi/client.py in Roundup before 1.4.2

Reporter	Title	Published	Views	Family All 10
Prion	Cross site scripting	11 Apr 201415:55	–	prion
UbuntuCve	CVE-2012-6131	11 Apr 201400:00	–	ubuntucve
Github Security Blog	Roundup Cross-site scripting (XSS) vulnerability	17 May 202201:37	–	github
OSV	PYSEC-2014-16	11 Apr 201415:55	–	osv
OSV	roundup - security update	23 Aug 201500:00	–	osv
Cvelist	CVE-2012-6131	11 Apr 201415:00	–	cvelist
NVD	CVE-2012-6131	11 Apr 201415:55	–	nvd
Tenable Nessus	Debian DLA-298-1 : roundup security update	24 Aug 201500:00	–	nessus
OpenVAS	Debian: Security Advisory (DLA-298-1)	8 Mar 202300:00	–	openvas
Debian	[SECURITY] [DLA 298-1] roundup security update	23 Aug 201516:11	–	debian

Nvd

Node

roundup-tracker roundupRange≤1.4.19

roundup-tracker roundupMatch1.4.0

roundup-tracker roundupMatch1.4.1

roundup-tracker roundupMatch1.4.2

roundup-tracker roundupMatch1.4.3

roundup-tracker roundupMatch1.4.4

roundup-tracker roundupMatch1.4.5

roundup-tracker roundupMatch1.4.6

roundup-tracker roundupMatch1.4.7

roundup-tracker roundupMatch1.4.8

roundup-tracker roundupMatch1.4.9

roundup-tracker roundupMatch1.4.10

roundup-tracker roundupMatch1.4.11

roundup-tracker roundupMatch1.4.12

roundup-tracker roundupMatch1.4.13

roundup-tracker roundupMatch1.4.14

roundup-tracker roundupMatch1.4.15

roundup-tracker roundupMatch1.4.16

roundup-tracker roundupMatch1.4.17

roundup-tracker roundupMatch1.4.18

Source	Link
issues	www.issues.roundup-tracker.org/issue2550711
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
pypi	www.pypi.python.org/pypi/roundup/1.4.20
openwall	www.openwall.com/lists/oss-security/2013/02/13/8
openwall	www.openwall.com/lists/oss-security/2012/11/10/2
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/84190

Parameter	Position	Path	Description	CWE
@action	query param	/support/issue1	Cross-site scripting (XSS) vulnerability allowing injection of arbitrary web script or HTML.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Apr 2014 15:55Current

5.9Medium risk

Vulners AI Score5.9

CVSS24.3

EPSS0.0025

CWE-79